Application No. 10/645,087 
Amendment "C" dated January 3, 2009 
Reply to Office Action mailed July 25, 2008 



AMENDMENTS TO THE CLAIMS 



This listing of claims replaces all prior versions, and listings, of claims in the application: 
Listing of Claims: 



system, a network provider, and one or more devices that can be accessed locally or over a 
network, a method for providing the client system access to one or more of the devices through 
the network provider, the method comprising the following: 

an act of identifying the one or more devices that can be accessed locally or over a 
network; 

an act of generating a target that identifies a set of the one or more devices, and 
that includes at least one corresponding device identifier, wherein the set of one or more 
devices is determined based on each of the devices having at least one common group of 
clients authorized to access the device; 

an act of associating client authorization information identified by the network 
provider with the target that identifies the set of the one or more devices , wherein only 




cli e nts having client authorization information associat e d with the target can access the 
devices identified by the target through the network provider ; and 

an act of dynamically assigning the target to a port through a protocol- 
independent port driver at the network provide r, such that only clients authorized by the 
associated client information are allowed to access the assigned port, thereby allowing 
only the clients access to the set of the one or more device through the target, wherein the 
assignment of the port is dependent upon load balancing of the network provider . 

2. (Previously Presented) The method as recited in claim 1, wherein the set of the 
one or more devices can be accessed locally through a local access protocol. 

3. (Previously Presented) The method as recited in claim 1, wherein the set of the 
one or more devices is a network device that can be accessed on a network through a network 
access protocol. 



1. 



(Currently Amended) In a computerized network environment including a client 




Page 2 of 15 



Application No. 10/645,087 
Amendment "C" dated January 3, 2009 
Reply to Office Action mailed July 25, 2008 

4. (Previously Presented) The method as recited in claim 1, wherein the act of 
identifying a set of one or more devices further includes an act of creating one or more devices 
that can be accessed over the network. 

5. (Previously Presented) The method as recited in claim 4, wherein the act of 
creating one or more devices includes an act of identifying at least one of a partition and file, 
wherein the at least one of a partition and file represents at least a portion of one of the one or 
more devices, and wherein the at least one of a partition and file can be configured by the 
network provider to provide the client modifiable access to the portion of the one of the one or 
more devices. 

6. (Original) The method as recited in claim 1, further comprising an act of 
providing client access to one or more of a port, a WWN, and a portal through the protocol- 
independent port driver, such that the protocol-independent port driver is accessed through one 
or more protocol-dependent mini-ports. 

7. (Original) The method as recited in claim 6, wherein the protocol-independent 
port driver and one or more protocol-dependent mini-port drivers are managed by the 
centralized service, and wherein the one or more protocol-dependent miniport drivers plug-in to 
the protocol-independent port driver. 

8. (Original) The method as recited in claim 7, wherein at least one of the one or 
more protocol-dependent miniport drivers communicates through one or more of an Ethernet, 
Token Ring, fiber channel, USB, or wireless protocol. 

9. (Original) The method as recited in claim 1, wherein the at least one device is a 
virtual SCSI device that can be accessed through an iSCSI protocol. 

10. (Original) The method as recited in claim 9, wherein the virtual SCSI device is a 
storage device, and the network comprises a storage area network. 
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11. (Original) The method as recited in claim 10, wherein the storage device is one or 
more of an internal or external magnetic storage medium, an optical storage medium, and a 
tape backup drive. 

12. (Original) The method as recited in claim 1, wherein the network provider 
manages one or more targets, one or more drivers, and authentication information for one or 
more clients through a centralized directory service. 

13. (Original) The method as recited in claim 12, wherein the network device 
identifier is identified by a target name and a LUN that has been assigned to the at least one 
device by the centralized directory service. 

14. (Previously Presented) The method as recited in claim 13, wherein the logical unit 
number refers to one or more of a device, a plug-and-play identifier for a device, a global 
unique identifier for a device, a device driver that interfaces with a device, and at least one of a 
partition and file that represents a portion of a device. 
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15. (Currently Amended) In a computerized network environment including a client 
system, a network provider, and one or more devices that can be accessed locally or over a 
network, a computer-readable storage media having stored thereon computer program product 
comprising computer-executable instruction s that when executed, cause a computing system to 
perform for performing a method for providing the client system access to one or more of the 
devices over the network through the network provider, the method comprising the following: 

an act of identifying a set of the one or more devices that can be accessed locally 
or over a network; 

an act of generating a target that identifies the set of the one or more devices, and 
that includes at least one corresponding device identifier, wherein the set of one or more 
devices is identified based on each of the devices having at least one common group of 
clients authorized to access the devices; 

an act of associating client authorization information identified by the network 
provider with the target that identifies the set of the one or more device, wherein only 
clients having client authorization information associated with the target can access the 
devices identified by the target; and 

an act of dynamically assigning the target to a port through a protocol- 
independent port driver at the network provide r, such that only clients authorized by the 
associated client information are allowed to access the assigned port, thereby allowing 
only the clients access to the set of the one or more device through the target, wherein the 
assignment of the port is dependent upon load balancing of the network provider . 

16. (Currently Amended) The computer-readable storage media computer pr o gram 
product as recited in claim 15, wherein the set of the one or more devices can be accessed 
locally through a local access protocol. 

17. (Currently Amended) The computer-readable storage computer program product 
as recited in claim 15, wherein the set of the one or more devices is a network device that can 
be accessed on a network. 
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18. (Currently Amended) The computer-readable storage media computer program 
product as recited in claim 15, wherein the act of identifying a set of one or more devices 
further includes an act of creating one or more devices that can be accessed over the network. 

19. (Currently Amended) The computer-readable storage media computer program 
produ ct as recited in claim 18, wherein the act of creating one or more devices includes an act 
of identifying at least one of a partition and file, wherein the at least one of a partition and file 
represents at least a portion of one of the one or more devices, and wherein the at least one of a 
partition and file can be configured by the network provider to provide the client modifiable 
access to the portion of the one of the one or more devices. 

20. (Currently Amended) The computer-readable storage media computer program 
product as recited in claim 15, with the method caused by the execution of the computer- 
executable instructions further comprising an act of providing client access to one or more of a 
port, a WWN, and a portal through the protocol-independent port driver, such that the protocol- 
independent port driver is accessed through one or more protocol-dependent mini-ports. 

21. (Currently Amended) The computer-readable storage media c o mputer program 
product as recited in claim 20, wherein the protocol-independent port driver and one or more 
protocol-dependent mini-port drivers are managed by the centralized service, and wherein the 
one or more protocol-dependent miniport drivers plug-in to the protocol-independent port 
driver. 

22. (Currently Amended) The computer-readable storage media computer program 
product as recited in claim 21, wherein at least one of the one or more miniport drivers 
communicates through one or more of an Ethernet, Token Ring, fiber channel, USB, or 
wireless protocol. 

23. (Currently Amended) The computer-readable storage media computer program 
pr oduct as recited in claim 15, wherein the at least one device is a virtual SCSI device that can 
be accessed through an iSCSI protocol. 
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24. (Currently Amended) The computer-readable storage media computer program 
product as recited in claim 23, wherein the virtual SCSI device is a storage device, and the 
network comprises a storage area network. 

25. (Currently Amended) The computer-readable storage media computer program 
product as recited in claim 24, wherein the storage device is one or more of an internal or 
external magnetic storage medium, an optical storage medium, and a tape backup drive. 

26. (Currently Amended) The computer-readable storage media computer program 
product as recited in claim 15, wherein the network provider manages one or more targets, one 
or more drivers, and authentication information for one or more clients through a centralized 
directory service. 

27. (Currently Amended) The computer-readable storage media computer program 
product -as recited in claim 26, wherein the device identifier is identified by a target name and a 
LUN that has been assigned to the at least one device by the centralized directory service. 

28. (Currently Amended) The computer-readable storage media computer program 
product as recited in claim 27, wherein the LUN is assigned to one or more of a device 
identifier, a plug-and-play identifier for a device, a global unique identifier for a device; a 
device driver that interfaces with a device; and at least one of a partition and file that represents 
a portion of a device. 
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29. (Currently Amended) In a computerized network environment including a client 
system, a network provider, and one or more devices that can be accessed locally or over a 
network, a method for providing the client system access to one or more of the devices over the 
network through the network provider, the method comprising the following: 

an act of identifying a set of the one or more partitions or files representing 
portions of devices that can be accessed locally or over a networ k, the set being based on 
one or more partitions or files having commonly authorized client access and consisting 
of only partitions or files to which the client has been assigned and to which the client is 
to be provided access ; 

an act of generating a target that identifies the set of the one or more partitions or 
files devices , and that includes at least one corresponding device identifier, wherein the 
set of one or more device is identified based on each of the devices having at least one 
common group of clients authorized to access the devices ; 

an act of associating client authorization information identified by the network 
provider with the target that identifies the set of the one or more partitions or files devices^ 
wherein only clients having client authorization information associated with the targ e t 
can acc e ss the devices id e ntifi e d by the target through th e network provider ; and 

a step for dynamically exposing the set of the one or more partitions or files 
devices to the client through a specific one of a dynamically assigned network port, a 
WWN, and a portal, such that the client can access the set of the one or more partitions or 
files device identified by the target when the client has access to the specific one of a 
dynamically assigned network port, a WWN, and portal, and when the client presents the 
associated client authorization to the network provider. 



Page 8 of 15 



Application No. 10/645,087 
Amendment "C" dated January 3, 2009 
Reply to Office Action mailed July 25, 2008 

30. (Previously Presented) The method as recited in claim 29, wherein the step for 
exposing the set of the one or more devices to the client through a specific one of a network 
port, a WWN, and a portal comprises: 

an act of assigning the target to a port through a protocol-independent port driver 
at the network provider; and 

an act of providing client access to the specific one of a port, a WWN, and a 
portal through the protocol-independent port driver, such that the protocol-independent 
port driver is accessed through one or more protocol-dependent mini-ports. 

31. (Original) The method as recited in claim 30, wherein the client is provided 
access to the specific one of a port, a WWN, and a portal by virtue of being authenticated at 
one or more of a local centralized service provider, and a remote authentication database. 
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32. (Currently Amended) In a computerized environment including a client computer 
and a storage service provider on a storage area network, the storage service provider 
comprising one or more storage devices, a method of providing the client computer with access 
to one or more of the storage devices on the storage service provider through an iSCSI 
protocol, the method comprising the following: 

an act of identifying a p l ur ali ty o f one or more device identifiers corresponding to 
one or more partitions or files representing the plurality of storage devices on a storage 
service provider, wherein the partitions or files allow access to portions of the at least one 
of the plurality of storage devices and enable a first device type to emulate a second 
device type is represented by at least one of a partition or a file, wherein the partition and 
file each allow indirect access to the at least one storage device ; 

an act of receiving from a centralized directory service a modifiable client 
resource that identifies client authorization to access at least the at least one of th e 
plurality of the storage devices device , and a portion of eaehthe storage device that the 
client can access , wherein the centralized directory maintains authentication information 
for the client, and at least one of a work group identity, network location, and physical 
location, and further maintains configuration information defining how the client 
accesses a partition or file representing a storage device ; 

an act of creating a target containing a plurality of logical unit numbers that have 
been assigned to the identified device identifiers, the target consisting of only logical 
units numbers to which the client has been assigned and to which the client is to be 
provided access, wherein the client can access only those storage devices represented by 
a logical unit number contained in the target using storage service provider, and wherein 
access to the target is provided according to the modifiable client resource; 

an act of providing the client computer access to the plurality of file or partition 
representing the storage devi c es device identified by the target represented by the 
plurality of logical unit numbers contained in the target through a client-restricted port 
on the storage service provider, wherein the client restricted port is dynamically assigned 
by the centralized directory service based on storage service provider load balancing and 
failover protection, such that when the client has knowledge of, access to^ the client- 
restricted port, the client can access the plurality of storage devi c es device by providing 
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the storage service provider with client authorization and a Uniform Resource Locator 
including the dynamically assigned port numbe r contained in the target by providing the 
storage service provider with client authorization 

an act of receiving, at the storage service provider, a client computer request to 
access at lea st th e at le a s t on e of the plurality of storage devices, wherein the client 
computer request is received through a protocol dependent mini port; 

an act of receiving client authorization; and 

upon recognizing that the client authorization corresponds with the requested at 
least the at least one of the plurality of storage devices, and that the client is authorized to 
access the target, providing the client computer with access to at least the at least one of 
the plurality of storage devices in the target . 

33. (Original) The method as recited in claim 32, wherein centralized directory 
service receives client access information from at least one of a local and remote database. 

34. (Cancelled) 

35. (Original) The method as recited in claim 32, wherein the client-restricted port is 
managed by the centralized service and a protocol-independent port driver that receives 
network traffic through one or more protocol-dependent mini-port drivers. 

36. (Original) The method as recited in claim 35, wherein the one or more protocol- 
dependent mini-port drivers are plug-ins to the protocol-independent port driver. 

37. (Original) The method as recited in claim 36, wherein at least one of the one or 
more mini-port drivers communicates through one or more of an Ethernet, Token Ring, USB, 
fiber channel, or wireless connection protocol. 
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